Описание
Vitejs Vite before v2.9.13 was discovered to allow attackers to perform a directory traversal via a crafted URL to the victim's service.
Ссылки
- ExploitIssue TrackingPatchThird Party Advisory
- Release NotesThird Party Advisory
- Release NotesThird Party Advisory
- ExploitIssue TrackingPatchThird Party Advisory
- Release NotesThird Party Advisory
- Release NotesThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.9.13 (исключая)
cpe:2.3:a:vitejs:vite:*:*:*:*:*:node.js:*:*
EPSS
Процентиль: 78%
0.01179
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 4.3
debian
больше 3 лет назад
Vitejs Vite before v2.9.13 was discovered to allow attackers to perfor ...
CVSS3: 8.6
github
больше 3 лет назад
Vite before v2.9.13 vulnerable to directory traversal via crafted URL to victim's service
EPSS
Процентиль: 78%
0.01179
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-22